open-telemetry · codeboten · May 2, 2023 · Apr 26, 2023 · Apr 26, 2023 · bogdandrutu
@@ -0,0 +1,16 @@
+# One of 'breaking', 'deprecation', 'new_component', 'enhancement', 'bug_fix'
+change_type: "bug_fix"
+
+# The name of the component, or a single word describing the area of concern, (e.g. otlpreceiver)
+component: "config/confighttp"
+
+# A brief description of the change.  Surround your text with quotes ("") if it needs to start with a backtick (`).
+note: Ensure Auth RoundTripper follows compression/header changes
+
+# One or more tracking issues or pull requests related to the change
+issues: [7574]
+
+# (Optional) One or more lines of additional information to render under the primary note.
+# These lines will be padded with 2 spaces and then inserted directly into the document.
+# Use pipe (|) for multiline entries.
+subtext:
@@ -135,28 +135,10 @@ func (hcs *HTTPClientSettings) ToClient(host component.Host, settings component.
 	}
 
 	clientTransport := (http.RoundTripper)(transport)
-	if len(hcs.Headers) > 0 {
-		clientTransport = &headerRoundTripper{
-			transport: transport,
-			headers:   hcs.Headers,
-		}
-	}
-	// wrapping http transport with otelhttp transport to enable otel instrumenetation
-	if settings.TracerProvider != nil && settings.MeterProvider != nil {
-		clientTransport = otelhttp.NewTransport(
-			clientTransport,
-			otelhttp.WithTracerProvider(settings.TracerProvider),
-			otelhttp.WithMeterProvider(settings.MeterProvider),
-			otelhttp.WithPropagators(otel.GetTextMapPropagator()),
-		)
-	}
-
-	// Compress the body using specified compression methods if non-empty string is provided.
-	// Supporting gzip, zlib, deflate, snappy, and zstd; none is treated as uncompressed.
-	if configcompression.IsCompressed(hcs.Compression) {
-		clientTransport = newCompressRoundTripper(clientTransport, hcs.Compression)
-	}
 
+	// The Auth RoundTripper should always be the innermost to ensure that
+	// request signing-based auth mechanisms operate after compression
+	// and header middleware modifies the request
 	if hcs.Auth != nil {
 		ext := host.GetExtensions()
 		if ext == nil {
@@ -174,6 +156,29 @@ func (hcs *HTTPClientSettings) ToClient(host component.Host, settings component.
 		}
 	}
 
+	if len(hcs.Headers) > 0 {
+		clientTransport = &headerRoundTripper{
+			transport: clientTransport,
+			headers:   hcs.Headers,
+		}
+	}
+
+	// Compress the body using specified compression methods if non-empty string is provided.
+	// Supporting gzip, zlib, deflate, snappy, and zstd; none is treated as uncompressed.
+	if configcompression.IsCompressed(hcs.Compression) {
+		clientTransport = newCompressRoundTripper(clientTransport, hcs.Compression)
+	}
+
+	// wrapping http transport with otelhttp transport to enable otel instrumenetation
+	if settings.TracerProvider != nil && settings.MeterProvider != nil {
+		clientTransport = otelhttp.NewTransport(
+			clientTransport,
+			otelhttp.WithTracerProvider(settings.TracerProvider),
+			otelhttp.WithMeterProvider(settings.MeterProvider),
+			otelhttp.WithPropagators(otel.GetTextMapPropagator()),
+		)
+	}
+
 	if hcs.CustomRoundTripper != nil {
 		clientTransport, err = hcs.CustomRoundTripper(clientTransport)
 		if err != nil {

@@ -36,7 +36,9 @@ import (
 	"go.opentelemetry.io/collector/component"
 	"go.opentelemetry.io/collector/component/componenttest"
 	"go.opentelemetry.io/collector/config/configauth"
+	"go.opentelemetry.io/collector/config/configcompression"
 	"go.opentelemetry.io/collector/config/configopaque"
+	"go.opentelemetry.io/collector/config/configtelemetry"
 	"go.opentelemetry.io/collector/config/configtls"
 	"go.opentelemetry.io/collector/extension/auth"
 	"go.opentelemetry.io/collector/extension/auth/authtest"
@@ -319,6 +321,34 @@ func TestHTTPClientSettingWithAuthConfig(t *testing.T) {
 				},
 			},
 		},
+		{
+			name: "with_auth_configuration_has_extension_and_headers",
+			settings: HTTPClientSettings{
+				Endpoint: "localhost:1234",
+				Auth:     &configauth.Authentication{AuthenticatorID: component.NewID("mock")},
+				Headers:  map[string]configopaque.String{"foo": "bar"},
+			},
+			shouldErr: false,
+			host: &mockHost{
+				ext: map[component.ID]component.Component{
+					component.NewID("mock"): &authtest.MockClient{ResultRoundTripper: &customRoundTripper{}},
+				},
+			},
+		},
+		{
+			name: "with_auth_configuration_has_extension_and_compression",
+			settings: HTTPClientSettings{
+				Endpoint:    "localhost:1234",
+				Auth:        &configauth.Authentication{AuthenticatorID: component.NewID("mock")},
+				Compression: configcompression.Gzip,
+			},
+			shouldErr: false,
+			host: &mockHost{
+				ext: map[component.ID]component.Component{
+					component.NewID("mock"): &authtest.MockClient{ResultRoundTripper: &customRoundTripper{}},
+				},
+			},
+		},
 		{
 			name: "with_auth_configuration_has_err_extension",
 			settings: HTTPClientSettings{
@@ -336,15 +366,34 @@ func TestHTTPClientSettingWithAuthConfig(t *testing.T) {
 	}
 	for _, test := range tests {
 		t.Run(test.name, func(t *testing.T) {
-			client, err := test.settings.ToClient(test.host, componenttest.NewNopTelemetrySettings())
+			// Omit TracerProvider and MeterProvider in TelemetrySettings as otelhttp.Transport cannot be introspected
+			client, err := test.settings.ToClient(test.host, component.TelemetrySettings{Logger: zap.NewNop(), MetricsLevel: configtelemetry.LevelNone})
 			if test.shouldErr {
 				assert.Error(t, err)
 				return
 			}
 			assert.NoError(t, err)
 			assert.NotNil(t, client)
+			transport := client.Transport
+
+			// Compression should wrap Auth, unwrap it
+			if configcompression.IsCompressed(test.settings.Compression) {
+				ct, ok := transport.(*compressRoundTripper)
+				assert.True(t, ok)
+				assert.Equal(t, test.settings.Compression, ct.compressionType)
+				transport = ct.RoundTripper
+			}
+
+			// Headers should wrap Auth, unwrap it
+			if test.settings.Headers != nil {
+				ht, ok := transport.(*headerRoundTripper)
+				assert.True(t, ok)
+				assert.Equal(t, test.settings.Headers, ht.headers)
+				transport = ht.transport
+			}
+
 			if test.settings.Auth != nil {
-				_, ok := client.Transport.(*customRoundTripper)
+				_, ok := transport.(*customRoundTripper)
 				assert.True(t, ok)
 			}
 		})